π·πΊ
DZBOT
2026-06-03 04:21:19
(2 days ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
2026-05-29 03:11:11
(1 week ago)
Web app attack and vulnerability scan detected from IIS logs
Brute-Force
Bad Web Bot
Web App Attack
π«π·
zulzeen
2026-05-25 15:05:21
(1 week ago)
[incypit-web] Blocked by SysWarden Firewall [GEO] (Web Attack)
Hacking
Web App Attack
πΊπΈ
interbiznw.com
2026-03-20 12:59:07
(2 months ago)
wordpress-fuzzing
Hacking
Brute-Force
Exploited Host
Web App Attack
π³π±
i-turnradio.nl
2026-01-16 22:24:58
(4 months ago)
2026-01-16 23:24:57 (CET) ~ Blocked by abusescan risk assessment
Web App Attack
π©πͺ
mygcode.de
2026-01-14 17:37:45
(4 months ago)
Scanning for Exploits
Bad Web Bot
2026-01-11 20:50:33
(4 months ago)
Web server attack
Hacking
Web App Attack
π¦πΊ
MAGIC
2025-12-26 00:16:18
(5 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
2025-12-05 09:06:56
(6 months ago)
wordpress-trap
Web App Attack
π¨π
rt
2025-11-14 14:08:26
(6 months ago)
Backdrop CMS module - malicious activity detected
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-09 16:21:42
(6 months ago)
(mod_security) mod_security (id:210740) triggered by 81.19.140.232 (100071.ip-ptr.tech): 1 in the la ...
show more
(mod_security) mod_security (id:210740) triggered by 81.19.140.232 (100071.ip-ptr.tech): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 09 11:21:38.545041 2025] [security2:error] [pid 25356:tid 25376] [client 81.19.140.232:55301] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||dulemba.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "dulemba.com"] [uri "/Blogstuff/2025/Italy-Jim-Dorothia/12-Fountain.jpg"] [unique_id "aRC_kvdcgWqpHMDYuNZebQAAAEg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-09 04:14:13
(6 months ago)
(mod_security) mod_security (id:210740) triggered by 81.19.140.232 (100071.ip-ptr.tech): 1 in the la ...
show more
(mod_security) mod_security (id:210740) triggered by 81.19.140.232 (100071.ip-ptr.tech): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 08 23:14:07.676643 2025] [security2:error] [pid 6053:tid 6053] [client 81.19.140.232:50583] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||drwolberg.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "drwolberg.com"] [uri "/wp-content/uploads/2021/02/Lipoescultura.pptx_page-0017.jpg"] [unique_id "aRAVDzh-crZjenqc_a4q5gAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-08 21:57:29
(6 months ago)
(mod_security) mod_security (id:210740) triggered by 81.19.140.232 (100071.ip-ptr.tech): 1 in the la ...
show more
(mod_security) mod_security (id:210740) triggered by 81.19.140.232 (100071.ip-ptr.tech): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 08 16:57:25.241743 2025] [security2:error] [pid 10920:tid 10920] [client 81.19.140.232:37841] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||scoutinsignia.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "scoutinsignia.com"] [uri "/jackets/g-poplinb.jpg"] [unique_id "aQ-8xaeEOZ-vzJB26s04cAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-08 16:10:28
(6 months ago)
(mod_security) mod_security (id:210740) triggered by 81.19.140.232 (100071.ip-ptr.tech): 1 in the la ...
show more
(mod_security) mod_security (id:210740) triggered by 81.19.140.232 (100071.ip-ptr.tech): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 08 11:10:24.380597 2025] [security2:error] [pid 26621:tid 26621] [client 81.19.140.232:35757] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||menafert.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "menafert.com"] [uri "/assets/img/download.svg"] [unique_id "aQ9rcLEazj8xk6hIcAjMCgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-08 10:09:32
(6 months ago)
(mod_security) mod_security (id:210740) triggered by 81.19.140.232 (100071.ip-ptr.tech): 1 in the la ...
show more
(mod_security) mod_security (id:210740) triggered by 81.19.140.232 (100071.ip-ptr.tech): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 08 05:09:24.323806 2025] [security2:error] [pid 31359:tid 31359] [client 81.19.140.232:54387] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.verdeprofundo.net|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.verdeprofundo.net"] [uri "/wp-content/uploads/2018/09/fINAL.jpg"] [unique_id "aQ8W1HJsjeb_-lSX8hU6EQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack